Security Bulletin

Mass layoffs create cybersecurity vulnerabilities through dormant accounts and disgruntled employees.

The now-resolved issue was potentially used to target high-profile individuals, researchers say.

AI is increasingly embedded into threat detection and response tools, but hallucinations can lead to false positive and inaccurate guidance. The AI-associated risk can't be completely eradicated, but SecOps teams can take steps to at least limit the...

Secure enterprise browsers deliver multi-layered security, including web security, protection against malware on the endpoint, and defense against malicious extensions.

Budget bill would make the federal government the sole authority regulating AI, if passed.

Agentic identity and security platforms (AISP) are quickly becoming the standard for security, says Aragon Research.

Cellebrite, a controversial digital forensics firm, is set to acquire virtualization vendor Corellium in a $170 million deal.

Cisco Talos researchers observed the new wiper malware in a destructive attack against an unnamed critical infrastructure organization.

The vulnerability, with a 9.9 CVSS score on a 10-point scale, results in different Cisco ISE deployments all sharing the same credentials as long as the software release and cloud platform remain the same.

Sophos researchers found this operation has similarities or connections to many other campaigns targeting GitHub repositories dating back to August 2022.

Cloud deployments of the Cisco Identity Services Engine could let attackers access sensitive data.